# V4.2.7

## Release Notes for emCA v4.2.7

**Release Date: 30/05/2025**

**Password Change at First Login**

Enforces a security policy requiring users to change their default or temporary password upon first login. This ensures account integrity and prevents unauthorized access using known default credentials.

* **Enabled Backup & Restore**

Provides a mechanism to back up system configurations, certificates, and critical data, allowing for complete or partial restoration. This feature supports disaster recovery and simplifies migration between environments.

* **Connectivity with SMTPS & LDAPS**

Supports secure communication with external services over SMTPS (SMTP over SSL/TLS) for email notifications and LDAPS (LDAP over SSL/TLS) for directory services. Ensures encrypted data transmission and compliance with secure networking standards.

**emCA REST API and Protocol Support - Enhancements in this version**

* **Replay Attack Protection Using Nonce**

Implements anti-replay mechanisms using a unique nonce (number used once) in cryptographic protocols. Ensures each request is unique, preventing attackers from reusing intercepted messages to gain unauthorized access or manipulate operations.

* **Basic Authentication for EST Protocols**

Supports HTTP Basic Authentication for Enrollment over Secure Transport (EST) operations, such as certificate enrollment and renewal. Ensures compatibility with clients that authenticate using simple credentials, while recommending transport-layer security (e.g., HTTPS) to protect credentials in transit.

**REST API Postman Link**

* **CA Management -** [V4.2.7](https://documenter.getpostman.com/view/40123569/2sB34imfqi)
* **Certificate Management -** [V4.2.7](https://documenter.getpostman.com/view/40123569/2sB34imfqi)